Question 1

Which practice ensures container security by preventing post-deployment modifications?

Options :

A : Implementing dynamic network segmentation policies

B : Employing Role-Based Access Control (RBAC) for container access

C : Regular vulnerability scanning of deployed containers

D : Use of immutable containers

Answer: D

Question 2

What is the primary advantage of implementing Continuous Integration and Continuous Delivery/Deployment (CI/CD) pipelines in the context of cybersecurity?

Options :

A : Replacing the need for security teams.

B : Slowing down the development process for testing.

C : Automating security checks and deployments.

D : Enhancing code quality.

Answer: C

Question 3

Who is responsible for the security of the physical infrastructure and virtualization platform?

Options :

A : The cloud consumer

B : The majority is covered by the consumer

C : It depends on the agreement

D : The responsibility is split equally

E : The cloud provider

Answer: A

Question 4

What key activities are part of the preparation phase in incident response planning?

Options :

A : Implementing encryption and access controls

B : Establishing a response process, training, communication plans, and infrastructure evaluations

C : Creating incident reports and post-incident reviews

D : Developing malware analysis procedures and penetration testing

Answer: B

Question 5

Which of the following is not one of the "meta-phases" described by the Cloud Security Alliance?

Options :

A : Secure Operations

B : Secure Deployment

C : Secure Optimization

D : Secure Design and Development

Answer: C